43 lines
1.0 KiB
Plaintext
43 lines
1.0 KiB
Plaintext
dn: olcDatabase={2}hdb,cn=config
|
|
changetype: modify
|
|
replace: olcSuffix
|
|
olcSuffix: __DN__
|
|
|
|
dn: olcDatabase={2}hdb,cn=config
|
|
changetype: modify
|
|
replace: olcRootDN
|
|
olcRootDN: cn=Manager,__DN__
|
|
|
|
dn: olcDatabase={2}hdb,cn=config
|
|
changetype: modify
|
|
replace: olcRootPW
|
|
olcRootPW: __SLAP__
|
|
|
|
dn: cn=config
|
|
changetype: modify
|
|
replace: olcTLSCACertificateFile
|
|
olcTLSCACertificateFile: /etc/openldap/certs/ca.crt
|
|
-
|
|
replace: olcTLSCertificateFile
|
|
olcTLSCertificateFile: /etc/openldap/certs/ldap.crt
|
|
-
|
|
replace: olcTLSCertificateKeyFile
|
|
olcTLSCertificateKeyFile: /etc/openldap/certs/ldap.key
|
|
|
|
dn: cn=config
|
|
changetype: modify
|
|
replace: olcTLSCipherSuite
|
|
olcTLSCipherSuite: HIGH:MEDIUM:-SSLv2
|
|
|
|
dn: cn=config
|
|
changetype: modify
|
|
replace: olcTLSVerifyClient
|
|
olcTLSVerifyClient: allow
|
|
|
|
dn: olcDatabase={2}hdb,cn=config
|
|
changetype: modify
|
|
replace: olcAccess
|
|
olcAccess: {0}to attrs=userPassword,shadowLastChange by dn="cn=Manager,__DN__" write by anonymous auth by self write by * none
|
|
olcAccess: {1}to dn.base="" by * read
|
|
olcAccess: {2}to * by dn="cn=Manager,__DN__" by self write by * read
|